This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/XggtKq3xpWGXCHEG7oJDyVrafuA.roa File: XggtKq3xpWGXCHEG7oJDyVrafuA.roa (raw, json) Hash identifier: Dw7wzvUkHqS4QhsFOClTO2lSejFZXMTyIw7n7pmXh3Q= Subject key identifier: 5E:08:2D:2A:AD:F1:A5:61:97:08:71:06:EE:82:43:C9:5A:DA:7E:E0 Certificate issuer: /CN=ae6af0d5f38289d34c21ba67c4c39787a42a669e Certificate serial: 019B7AC93364A2964F8F5A4BE797D55781F2 Authority key identifier: AE:6A:F0:D5:F3:82:89:D3:4C:21:BA:67:C4:C3:97:87:A4:2A:66:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmrw1fOCidNMIbpnxMOXh6QqZp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/XggtKq3xpWGXCHEG7oJDyVrafuA.roa Signing time: Thu 01 Jan 2026 18:19:24 +0000 ROA not before: Thu 01 Jan 2026 18:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.11.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/rmrw1fOCidNMIbpnxMOXh6QqZp4.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/rmrw1fOCidNMIbpnxMOXh6QqZp4.mft rsync://rpki.ripe.net/repository/DEFAULT/rmrw1fOCidNMIbpnxMOXh6QqZp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:33:64:a2:96:4f:8f:5a:4b:e7:97:d5:57:81:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6af0d5f38289d34c21ba67c4c39787a42a669e Validity Not Before: Jan 1 18:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e082d2aadf1a56197087106ee8243c95ada7ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:ef:b9:01:22:04:62:ce:56:ed:4e:a5:f1: a0:45:a1:43:98:93:79:92:52:c5:2b:bf:10:86:74: a1:c0:13:bc:b1:22:8f:a2:d9:f6:52:bb:3f:93:45: d6:27:f8:09:23:f8:75:60:94:d8:d2:7a:0c:ec:5d: d6:e6:bb:96:dc:0f:5a:9c:e5:65:7d:57:25:fe:a7: 2b:fc:03:0a:14:e5:7b:9b:da:e3:5a:6e:9e:b5:dd: 36:83:f0:cd:6b:be:30:7f:c7:45:0b:e9:64:9a:c8: 1a:a2:0f:08:6b:b8:ef:45:2f:b2:fa:6f:48:1d:c9: 1e:a0:c2:51:45:80:b6:4d:a7:8d:36:2b:89:61:87: 29:74:03:45:62:d8:24:c5:97:53:30:3f:08:8a:46: a3:1c:83:5b:27:80:c6:60:3c:dc:36:92:44:16:b4: d8:8e:ca:77:48:66:36:c1:55:97:9d:2f:1a:fb:bb: 51:6d:f6:09:bf:08:b4:a1:88:39:e0:4f:b1:56:0b: c5:72:9b:c5:20:e2:93:11:3e:52:93:fe:d0:86:f5: 75:18:2f:e1:b4:cb:18:34:b8:fd:6d:47:55:68:2e: a2:08:c2:f2:78:38:71:df:72:6b:61:7a:79:bb:c9: b6:3f:05:cc:92:82:03:06:da:c2:12:80:ab:a8:bb: c9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:08:2D:2A:AD:F1:A5:61:97:08:71:06:EE:82:43:C9:5A:DA:7E:E0 X509v3 Authority Key Identifier: keyid:AE:6A:F0:D5:F3:82:89:D3:4C:21:BA:67:C4:C3:97:87:A4:2A:66:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmrw1fOCidNMIbpnxMOXh6QqZp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/XggtKq3xpWGXCHEG7oJDyVrafuA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/def555-9651-4e81-828c-7a94da7d9ee2/1/rmrw1fOCidNMIbpnxMOXh6QqZp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.11.104.0/24 Signature Algorithm: sha256WithRSAEncryption 00:c0:06:4a:6e:a9:ce:73:eb:6e:10:fc:83:99:50:bf:37:25: 6b:25:07:84:85:03:c4:ae:06:3b:5f:74:9e:42:11:d4:d2:a4: dc:a2:52:34:be:41:85:e2:02:02:d4:d0:e0:42:bb:d7:4f:c5: 06:a3:9f:c9:aa:3a:07:ca:2f:cb:dd:7a:f2:4b:8b:d6:c5:a5: 81:34:62:71:06:f2:c1:6d:a4:96:ec:fa:20:16:e5:83:6f:9e: 62:3c:1c:1c:d4:26:d3:18:3f:f6:d0:23:56:7f:82:d1:70:6e: fa:34:cb:51:f8:8b:f4:e3:43:31:49:a3:4f:8a:f5:0b:38:f3: bb:24:0e:60:e6:f7:19:9a:72:fa:05:3c:ba:9f:b9:4e:2c:ae: 78:96:51:6c:ee:d7:33:8b:83:18:0e:11:c4:64:3d:27:a3:3d: e1:f3:53:8b:5e:a8:96:c3:b2:05:a1:7b:a6:8d:45:c7:2c:5d: c7:b3:c1:82:53:51:24:7e:e2:e4:d9:68:82:4d:d9:3c:f8:7d: d2:c0:ee:0d:9b:a0:b2:c5:db:44:b9:25:9b:2d:8a:83:91:3c: bd:84:b9:05:2c:92:12:3d:9f:c4:a7:c4:64:53:93:55:e5:ce: d5:b1:8c:75:bc:af:fe:a2:69:2b:85:6f:dc:9d:0b:b6:13:37: 23:01:04:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yTNkopZPj1pL55fVV4HyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmFmMGQ1ZjM4Mjg5ZDM0YzIxYmE2N2M0YzM5Nzg3YTQy YTY2OWUwHhcNMjYwMTAxMTgxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTA4MmQyYWFkZjFhNTYxOTcwODcxMDZlZTgyNDNjOTVhZGE3ZWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Q/vuQEiBGLOVu1OpfGgRaFDmJN5 klLFK78QhnShwBO8sSKPotn2Urs/k0XWJ/gJI/h1YJTY0noM7F3W5ruW3A9anOVl fVcl/qcr/AMKFOV7m9rjWm6etd02g/DNa74wf8dFC+lkmsgaog8Ia7jvRS+y+m9I HckeoMJRRYC2TaeNNiuJYYcpdANFYtgkxZdTMD8IikajHINbJ4DGYDzcNpJEFrTY jsp3SGY2wVWXnS8a+7tRbfYJvwi0oYg54E+xVgvFcpvFIOKTET5Sk/7QhvV1GC/h tMsYNLj9bUdVaC6iCMLyeDhx33JrYXp5u8m2PwXMkoIDBtrCEoCrqLvJYQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF4ILSqt8aVhlwhxBu6CQ8la2n7gMB8GA1UdIwQY MBaAFK5q8NXzgonTTCG6Z8TDl4ekKmaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm1ydzFmT0NpZE5NSWJwbnhNT1hoNlFxWnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kZWY1NTUtOTY1MS00ZTgxLTgyOGMt N2E5NGRhN2Q5ZWUyLzEvWGdndEtxM3hwV0dYQ0hFRzdvSkR5VnJhZnVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9kZWY1NTUtOTY1MS00ZTgxLTgyOGMtN2E5NGRhN2Q5ZWUy LzEvcm1ydzFmT0NpZE5NSWJwbnhNT1hoNlFxWnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQtoMA0G CSqGSIb3DQEBCwUAA4IBAQAAwAZKbqnOc+tuEPyDmVC/NyVrJQeEhQPErgY7X3Se QhHU0qTcolI0vkGF4gIC1NDgQrvXT8UGo5/JqjoHyi/L3XryS4vWxaWBNGJxBvLB baSW7PogFuWDb55iPBwc1CbTGD/20CNWf4LRcG76NMtR+Iv040MxSaNPivULOPO7 JA5g5vcZmnL6BTy6n7lOLK54llFs7tczi4MYDhHEZD0noz3h81OLXqiWw7IFoXum jUXHLF3Hs8GCU1EkfuLk2WiCTdk8+H3SwO4Nm6CyxdtEuSWbLYqDkTy9hLkFLJIS PZ/Ep8RkU5NV5c7VsYx1vK/+omkrhW/cnQu2EzcjAQTt -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:42 2026 by rpki-client